k8s-cluster

duynguyen/k8s-cluster

Fork 0

Commit Graph

Author	SHA1	Message	Date
duynguyen	738688ab2c	fix: add sync-wave -1 to Jenkins ExternalSecrets Secrets must exist before Jenkins pod mounts them. Sync wave -1 ensures ESO creates secrets before Jenkins Helm resources. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-22 16:18:18 +07:00
duynguyen	afadbbbf7d	feat: add harbor/gitea credentials via Vault ESO + JCasC - ExternalSecret manifests sync kv/jenkins/{harbor,gitea}-credentials from Vault → K8s secrets in jenkins namespace - Jenkins values: additionalExistingSecrets mounts both secrets - JCasC configScript creates harbor-credentials + gitea-credentials pipeline credentials from mounted secret env vars Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-22 16:01:22 +07:00

Author

SHA1

Message

Date

duynguyen

738688ab2c

fix: add sync-wave -1 to Jenkins ExternalSecrets

Secrets must exist before Jenkins pod mounts them.
Sync wave -1 ensures ESO creates secrets before Jenkins Helm resources.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-22 16:18:18 +07:00

duynguyen

afadbbbf7d

feat: add harbor/gitea credentials via Vault ESO + JCasC

- ExternalSecret manifests sync kv/jenkins/{harbor,gitea}-credentials
  from Vault → K8s secrets in jenkins namespace
- Jenkins values: additionalExistingSecrets mounts both secrets
- JCasC configScript creates harbor-credentials + gitea-credentials
  pipeline credentials from mounted secret env vars

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-22 16:01:22 +07:00

2 Commits